Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[8.11] [Security Solution][Detection Engine] fixes ES|QL ECS multifiefields issue (#167769) #168206

Merged
merged 1 commit into from
Oct 6, 2023
Merged

[8.11] [Security Solution][Detection Engine] fixes ES|QL ECS multifiefields issue (#167769) #168206

merged 1 commit into from
Oct 6, 2023

Conversation

kibanamachine
Copy link
Contributor

Backport

This will backport the following commits from main to 8.11:

Questions ?

Please refer to the Backport tool documentation

@vitaliidm
[Security Solution][Detection Engine] fixes ES|QL ECS multifiefields …
c6ab9d5 
…issue (elastic#167769)

## Summary

- fixes elastic/security-team#7741 by
replacing `ecsMap` from hardcoded `@kbn/rule-registry-plugin` to actual
mapping for alerts indices from `@kbn/alerts-as-data-utils`
- when converting ES|QL row table results to object, `null` values
skipped, since its results consists of all existing mappings in searched
indices, if fields in query are not filtered

### Checklist

Delete any items that are not applicable to this PR.

- [x] [Unit or functional
tests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)
were updated or added to match the most common scenarios

(cherry picked from commit 4ebe45d)
@kibanamachine kibanamachine enabled auto-merge (squash) October 6, 2023 11:06
@kibanamachine kibanamachine mentioned this pull request Oct 6, 2023
Merged
1 task
@kibana-ci
Copy link
Collaborator

kibana-ci commented Oct 6, 2023
edited
Loading

💔 Build Failed

Failed CI Steps

Test Failures

  • [job] [logs] Investigations - Security Solution Cypress Tests #7 / Detections : Page Filters Impact of inputs "after each" hook for "should take timeRange into account" "after each" hook for "should take timeRange into account"
  • [job] [logs] Investigations - Security Solution Cypress Tests #7 / Detections : Page Filters Impact of inputs should take timeRange into account should take timeRange into account

Metrics [docs]

✅ unchanged

History

To update your PR or re-run it, just comment with:
@elasticmachine merge upstream

cc @vitaliidm

@kibanamachine kibanamachine merged commit 79224cc into elastic:8.11 Oct 6, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

Assignees

@vitaliidm vitaliidm

Labels
backport
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@kibanamachine @kibana-ci @vitaliidm